Multi-controller captive portal SSL certificate

‎01-15-201206:03 PM

I did a CSR for my master controller and installed the certificate with the name wireless.xxx.yyy.edu. This is the name I would like to use as the URL for the captive portal redirect. How can I export the certificate with private key from the master to add to the local controllers?

Re: Multi-controller captive portal SSL certificate

‎01-23-201205:58 PM

My advice would be that you NOT generate the CSR on the controller, because we specifically make it very difficult (if not impossible) to get the private key off the controller. If you want to use the same certificate on multiple controllers, I would suggest following this workflow:

1. Find a Unix box with OpenSSL on it

2. Generate the private key

3. Generate the CSR, using your desired hostname as the CN

4. Get the certificate from the CA

5. Put the certificate and private key back together as a PFX / PKCS#12 file, which will be password protected

Re: Multi-controller captive portal SSL certificate

‎09-06-201209:31 PM

Support was very helpful with this resolution. Once you get the cert from the CA don't do the last step. Get the intermediate and merge them together putting the intermediate above the server cert in the same file.